Buy or Renew
Buy or Renew
Cisco + Splunk: It’s a new day for your data. Learn more.
 
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
757
Views
5
Helpful
1
Replies

How To Configure VPDN Groups to use Different RADIUS Servers

Go to solution
SiBrasso
Level 1
Level 1

‎07-15-2019 08:15 AM

 

Hi

 

The scenario here is I have a VPDN tunnel from 1 broadband provider which is using an old RADIUS and then I have anew VPDN tunnel from a different broadband provider who I want to put on a new RADIUS server.  The long term plan is to move all the broadband connections to the new provider and decommission the old RADIUS as part of the same project.  However I cant see for the life of me where/how I would configure this to happen.

 

Any Help would be greatly appreciated.   I’m doing this on a ASR-1001

 

Thanks

Labels:
0 Helpful
1 Accepted Solution

Accepted Solutions

Go to solution
SiBrasso
Level 1
Level 1

‎07-29-2019 02:21 AM

I have resolved this issue by doing the following:

 

Create the RADIUS servers:

 

radius server ISE01

 address ipv4 ###.###.###.### auth-port 1812 acct-port 1813

 timeout 10

 key ####

!

radius server ISE02

 address ipv4 ###.###.###.### auth-port 1812 acct-port 1813

 timeout 10

 key ####

 

Now create a group with those servers in

aaa group server radius VPDN-NewISE-Radz

 server name ISE01

 server name ISE02

 

Now create an authentication list with that group in

aaa authentication ppp NewISERadzAuthList group VPDN-NewISE-Radz none

 

Now add this authentication list to the Virtual-Template

interface Virtual-Template3

ppp authentication chap NewISERadzAuthList

 

 

View solution in original post

1 Reply 1

Go to solution
SiBrasso
Level 1
Level 1

‎07-29-2019 02:21 AM

I have resolved this issue by doing the following:

 

Create the RADIUS servers:

 

radius server ISE01

 address ipv4 ###.###.###.### auth-port 1812 acct-port 1813

 timeout 10

 key ####

!

radius server ISE02

 address ipv4 ###.###.###.### auth-port 1812 acct-port 1813

 timeout 10

 key ####

 

Now create a group with those servers in

aaa group server radius VPDN-NewISE-Radz

 server name ISE01

 server name ISE02

 

Now create an authentication list with that group in

aaa authentication ppp NewISERadzAuthList group VPDN-NewISE-Radz none

 

Now add this authentication list to the Virtual-Template

interface Virtual-Template3

ppp authentication chap NewISERadzAuthList

 

 

Getting Started

Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community:

Customers Also Viewed These Support Documents